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Internet Debit System 



BACKGROUND OF THE INVENTION 



5 TECHNICAL FIELD 

The invention relates generally to an Internet debit system. More particularly, the 
invention relates to a system and method for PIN purchasing technology and 
processes for transmitting a PIN based debit transaction via the Internet for 
10 eCommerce transactions. 

DESCRIPTION OF THE PRIOR ART 



ATM machines are found throughout the world in a variety of settings and have 
15 become an assumed component of the lifestyle of millions. They operate at hours 
and in locations not serviced by regular financial institutions, providing a significant 
set of sen/ices to anyone possessing an access card and password sequence, which 
is often a four keystroke sequence known as a Personal Identification Number (PIN). 
Access to the user's finances can be attained. Cash can be received and/or 
20 transferred, which is accordingly credited or debited against the financial account. 
The account status may be viewed, as can a log of recent transactions. 

A debit card is assigned and given to a user in order to access his account via an 
ATM machine. Typically, the debit card is a plastic card like a credit card and has a 
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magnetic strip storing pertinent user account informational and other essential 
informational data. The user inserts the card into a slot on the ATM, enters his PIN, 
and is guided through various options that are mostly financial-based. 



5 In addition, the user can make point of sale purchases at certain merchant stores, 
such as a grocery store, by swiping his debit card through a device that reads the 
data on the magnetic strip. Then by entering the PIN, the user authorizes the 
purchase and the amount is debited from his bank account. 

10 Another venue for point of sale transactions is the Internet for eCommerce. Using 
the debit card and PIN for Internet transactions poses unique problems. Currently, a 
problem exists in transmitting a debit cardholder's PIN via the Internet and the ability 
for consumer and online merchants to use PIN based debit transactions at the 
Internet point of sale. 

15 

Some techniques for trying to solve the problem include issuing smart card readers 
to consumers, or issuing CD/ROM based debit cards to consumers. Other methods 
for attempting to create a secure, alternative payment type for the Internet include 
enabling alternative payment types, such as electronic checks and stored value 
20 cards. Additionally on the Internet, credit card authentication technology is used for 
authenticated credit card and check card transactions. 

However, in each of these technologies, there is an excessive burden for the 
consumer and for the merchant. For example, an undo burden is put on the 
25 consumer or the credit card issuer when a piece of hardware has to be installed on a 
consumer's personal computer or the consumer is issued a new CD/ROM card. 
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Solutions employing such techniques are equally implausible. In the case of 
alternative payments, such as stored value cards, consumers want to use the 
accounts that they are able to use in the physical world in the Internet world. That is, 
as an alternative to stored value cards/accounts that are typically tied to one 
5 merchant/limited services, consumers can use their existing accounts in both the 
physical world (POS, ATMs, etc.) as well as the Internet. In the case of credit card 
authentication technology, consumers must register and thus remember a new 
password. Additionally, the checkout process is interrupted because the transaction 
has to be handed off for authentication and validation to several service providers, i.e. from 
10 merchant to associations to acquirers to issuers back to the acquirer to the merchant and 
finally to the customer. Additionally, the merchants have significant integration work just 
to process the transaction correctly, let alone to provide a semi-seamless process for 
consumers. 



15 Michael Daly and Thomas A, Grate, Computerized purchasing system and method 
for mediating purchase transactions over an interactive network, U.S. Patent No. 
5,878,141 (March 2, 1999) discloses a computerized, electronic purchase mediating 
system which includes a purchaser database having a list of purchasers and a 
merchant database having a list of merchants. The purchaser database stores 

20 information about each purchaser including a set of personal payment methods that 
the purchaser could use to purchase goods and/or services. Similarly, the merchant 
database stores information about each merchant including a set of accepted 
payment methods that the merchant accepts for sale of the goods and/or services. 
The purchase system also includes a processor coupled to the purchaser and 

25 merchant databases. The processor receives a purchase request and accesses the 
merchant database according to a merchant identified in the purchase request to 
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retrieve the set of accepted payment methods which corresponds to that merchant. 
The processor also accesses the purchaser database to retrieve the set of personal 
payment methods that corresponds to the identified purchaser. The processor then 
computes an intersection of these two sets to derive a common set of any available 
5 payment method that is both accepted by the merchant and can be used by the 
purchaser for purchase of the goods and/or services. The purchaser is presented 
with the purchase amount and the common set of available payment methods to 
choose a most preferred form of payment. Upon selection, the processor 
consummates the sale and signs a digital signature with the purchaser's permission 
10 via password verification to ensure for the merchant that a completed transaction 
has occurred. 

Balas Natarajan Kausik, Method and apparatus for cryptographically camouflaged 
cryptographic key storage, certification and use, U.S. Patent No. 6,170,058 (January 

15 2, 2001) discloses a digital wallet that stores a cryptographically camouflaged 
access-controlled datum, e.g. a private key encrypted under the user's PIN. Entry of 
the correct PIN correctly decrypts the stored key. Entry of certain pseudo-valid PINs 
will also decrypt the stored key, but improperly so, resulting in a candidate key 
indistinguishable from the correct key. Such pseudo-valid PINs are spread thinly 

20 over the space of PINs, so that the user is unlikely to realize a pseudo-valid PIN via 
a typographical error in entering the correct PIN. In existing wallet technologies, 
which lack pseudo-valid PINs, only the correct PIN produces a decrypted key; thus, 
hackers can find the correct PIN by entering all possible PINs until a key is 
produced. The disclosure teaches plurality of candidate keys prevents a hacker from 

25 knowing when he has found the correct key. In addition, hacker detection may be 
moved off-line into devices accepting messages signed with candidate keys, and/or 
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the lockout threshold may be increased. Thus, the wallet can be forgiving of 
typographic or transposition errors, yet a hacker trying a large numbers of PINs will 
eventually guess a pseudo-valid (but still incorrect) PIN and recover a candidate 
private key whose fraudulent use will be detected. The wallet may be used with 
5 associated key generation, certification, and verification technologies. Such 
technologies may include pseudo-public keys embedded in pseudo-public 
certificates, i.e. public keys that are not generally known and which are contained in 
certificates that are verifiable only by entities so authorized by the certifying authority. 

10 Douglas Hoover, Method and apparatus for secure entry of access codes in a 
computer environment, U.S. Patent No. 6,209.102 (March 27, 2001) discloses that a 
user inputting his access code, e.g. PIN or password, into a computing environment 
to access a transaction is at risk of losing the access code to an attacker who has 
physical or electronic access to the computing environment. To minimize this risk, 

15 the access code can be entered via a plurality of user-selectable fields, each of 
which takes on a series of values, the initially displayed values of which are 
established in a random or otherwise unpredictable manner. The user then uses a 
mouse, keyboard, or other input device to increment each of the selectable fields 
until the access code is correctly entered. Because of the randomization of the initial 

20 state, an attacker tracking the locations or number of mouse clicks or other 
navigation actions can not determine the finally entered access code by techniques, 
e.g. computing an offset from a known initial state. 

Len L. Mizrah, System and method for private and secure financial transactions, 
25 EP1 223524 (July, 17, 2002) discloses a system and method for private and secure 
financial transactions. The technique comprises embedded into financial institutions 
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privacy and security layer architecture and clocked authentication, authorization and 
accounting (AAA) method. The technique enables legal financial account holders to 
perform buy/sell or withdraw/deposit financial transactions without disclosing private 
personal information to the transaction counterparts, while preserving security and 
5 fraud protection. Before the financial transaction, the financial account holder 
initiates an authentication session with the financial institution back office by 
accessing its central processing unit and data base, configured in the embedded 
privacy and security layer architecture (EPSL) with automated clocked AAA sessions 
by using dedicated communication lines. The authentication session is interactive, 

10 transaction specific, and followed by either financial transaction deny or an 
alphanumeric signature generated for this specific financial transaction. Then 
financial account holder submits his/her request to a transaction counterpart along 
with the EPSL account number and the alphanumeric signature, generated by the 
financial institution EPSL during a previous authentication session. The transaction 

15 counterpart adds up additional or more refined financial transaction specific 
information and requests an authorization session with the financial institution back 
office where the EPSL account, CPU and database are residing. The accounting 
session starts at the end of the authentication session and finishes along with the 
authorization session while being an essential part of them both. 

20 

It is readily apparent that there is a need to provide a PIN based Internet debit 
system that allows for the transmission of an eCommerce Internet transaction with a 
debit card or ATM card and with the cardholder's existing PIN. It would be further 
advantageous to provide a system and method that provides a secure and encrypted 
25 transmission of such PIN and of transaction data via the Internet to the payment 
network and to the issuing financial institution. It would be further advantageous to 
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provide a secure system and method that: 

• does not require any additional hardware on the part of the consumer; 

5 • does not require the consumer to register and remember a new password; 

• does not interrupt the existing checkout processes at the merchant web site; 

• protects consumers and merchants from fraud via real time authentication of the 
10 PIN; 

• provides a guarantee of good funds to the merchant, which is an improvement 
over using an ACH card or an eCheck; 

15 • uses the existing bank, ATM network, and point of sale infrastructure to process 
Internet transactions as well as manage chargebacks; and 

• does not require that the issuing bank reissue new cards. 

20 SUMMARY OF THE INVENTION 

A PIN based Internet debit system and method is provided. The system and method 
allow for the transmission of an eCommerce Internet transaction with a debit card or 
ATM card and the cardholders existing PIN. In addition, the system and method 
25 allow for secure and encrypted transmission of such PIN and transaction data via the 
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Internet to the payment network and the issuing financial institution. In one 
embodiment of the invention, a pop-up is used to get control of a user's browser to 
present a PIN pad such that the user may enter PIN information associated with the 
user's debit/ATM cards. In this way, the invention provides debit card or ATM type 
5 functionality to web pages. 

BRIEF DESCRIPTION OF THE DRAWINGS 

Fig. 1 is a PIN purchase authorization system diagram that also shows system flow 
10 according to the invention; 

Fig. 2 is a process diagram according to the invention; and 

Fig. 3 is a process diagram of PIN pad processing according to the invention. 

15 

DETAILED DESCRIPTION OF THE INVENTION 

A PIN based Internet debit system and method is provided. The system and method 
allow for the transmission of an eCommerce Internet transaction with a debit card or 
20 ATM card arid the cardholders existing PIN. In addition, the system and method 
allow for secure and encrypted transmission of such PIN and transaction data via the 
Internet to the payment network and the issuing financial institution. In one 
embodiment of the invention, a pop-up is used to get control of a user's browser to 
present a PIN pad such that the user may enter PIN information associated with the 
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user's debit/ATM cards. In this way, the invention provides debit card or ATM type 
functionality to web pages. 

Overview 

5 

The invention allows debit cardholders and ATM cardholders to conduct 
transactions over the Internet by paying for the purchases using their existing 
PINs as an authentication method in that purchase. Merchants work with the 
third party providers of the floating PIN pads. The invention provides Application 

10 Programming Interface messages (APIs) to merchants to program their web page 
to enable a PIN based debit payment type on their web site as part of the 
merchant's check out process. The APIs provide the universal, standard 
language and message structure that is used to communicate with the merchant 
and adopted by all third party providers. When the consumer selects this 

15 payment type, the consumer is redirected to a new URL, which pops up an 
authentication module referred to herein as the floating PIN pad. It should be 
appreciated that that floating PIN pad has a number arrangement of its PIN keys, 
the arrangement of which change every time a number is entered. Such PIN pad 
itself floats around on the screen. Such method prevents hacking wherein the 

20 PIN is identified by the pointing of and the location of every item on the particular 
page. Therefore, a hacker cannot determine what the consumer is doing with his 
mouse clicks or the equivalent input device. In addition, with the floating PIN 
pad, a consumer is not able to enter the PIN using a keyboard, thereby 
preventing hackers from determining the PIN from any keyboard activity. It 

25 should be appreciated that right after the consumer enters his PIN, the 
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embedded PIN pad module encrypts the PIN. Such immediate encryption is 
accomplished without any additional requirements for the consumer, such as 
downloading any applets or registering for any new process. The associated 
transaction is then delivered through the system and submitted to the acquiring 
5 financial institution, where the acquiring financial institution (acquirer) is the 
service provider that processes the transactions for/on behalf of a merchant. At 
such point in time, the transaction is passed along to a card network, such as 
Star or Interlink, for example. Alternatively, if the transaction is internal to the 
acquiring financial institution (on us), the transaction is passed to the appropriate 

10 internal processing module. For example, the transaction may be passed to an 
ATM group, where such PIN and transaction information is decrypted and the 
transaction continues through normal processing channels. That is, for example 
the PIN and transaction information follows the same processing convention that 
a typical point of sale or ATM transaction uses, which leverage existing retail 

15 deposit systems and available balances. A message is delivered back to the 
merchant's web site stating whether or not the transaction is approved. Finally, if 
approved, the appropriate funds are debited from the consumer's Data Deposit 
Account (DDA), for example a checking account, instantaneously. 

20 It should be appreciated that the PIN is never passed in the clear over the 
Internet. That is, there is no point in time when the PIN is sitting out on the 
Internet in the clear in any way, shape or form. A particular PIN number is 
encrypted as it is entered in the floating PIN pad. The encrypted PIN is then 
decrypted using the same methodology used for decrypting ATM transactions 
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coming from a point of sale. There are currently very stringent security 
requirements for processing PINs that are typically hardware based. 

It should be appreciated that the invention provides an integrated solution including 
5 merchant protocol, acquiring bank protocol, network protocol, and DDA protocol. 
The protocol is a DNA imprint that uniquely qualifies all participants within the 
eCommerce transaction and maintains their integrity. 

Benefits to the Merchant 

10 

A merchant has the ability to have guaranteed funds from an authenticated user. 
The merchant is protected from a number of the charge backs that they're 
exposed to today, because the issuing bank assumes the liability in the instance 
of a submission with the PIN. In addition, it is likely that the financial institution 
15 will charge less for PIN purchasing payment option than for other debit 
transactions or credit card transactions. Therefore, for the merchant it's a lower- 
cost, lower-risk, more secure solution that doesn't require a lot of integration, and 
doesn't push the merchant's customer to have to engage in an extra registration 
process, downloading software, or purchasing a card reader. 

20 

Benefits to the Consumer 

From a consumer's perspective, some research has demonstrated that 
consumers feel much more comfortable, or would feel much more comfortable, if 
25 they could use their PIN with their card on the Internet. Additionally, there is a 
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population of consumers who don't have a check card, in other words a debit 
card with a credit card logo on it, but have only a straight ATM card. With the 
invention, the consumer can use it to purchase items on the Internet. Also, the 
merchant's systems and clerks never see or need to use the customer's PIN. It 
5 should be appreciated that a customer's card number and PIN number are 
processed separately. This is a security precaution that ensures both pieces of 
information, which significantly reduces potential fraud. 

System Architecture 

10 

One embodiment of the invention is described with respect to Fig. 1 , a PIN purchase 
authorization system diagram that also shows system flow according to the 
invention. A buyer fills his shopping cart and proceeds to the merchant's checkout 
page 102. From the same or a different check out page, the buyer selects PIN 

15 Purchase as his payment method and enters or selects his debit card number 104. 
The merchant system re-directs the buyer's browser 105 to an Internet Authorization 
Server (IAS) 1 06, passing along a unique transaction id. The IAS 1 06 displays a 
secure PIN pad screen 108 and uses a unique session key under Secure Sockets 
Layer (SSL) technology, described in further detail herein below. The buyer enters 

20 his PIN using a mouse or similar input device. The PIN is encrypted using the 
unique session key passed to the IAS. The IAS passes the encrypted PIN to a Host 
Security Module (HSM) 110, which is also capable of encrypting and decrypting 
PINs, to generate an encrypted ANSI PIN Block. The ANSI PIN block is passed 
back to the IAS 106. The IAS 106 returns control of the buyer's browser to the 

25 merchant and passes along the unique transaction id, which is used as a key for 
encryption purposes. The merchant server (102, 104) creates a payment request 
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based on the contents of the shopping cart and the payment method. The merchant 
then sends the payment request through the IAS 106 over a secure link to an 
Internet Payments Server 112. The Internet Payments Server 112 determines the 
payment type and formats a payment authorization request. The payment 
5 authorization request is routed to an ATM/POS system 116. The ATM/POS system 
116 takes the encrypted ANSI PIN block passed along with the payment request and 
routes it through a different HSM 1 14 to be decrypted and translated to the acquiring 
financial institution, the ATM/POS system 116 encrypted PIN data. If the transaction 
is an on-us transaction, then the ATM/POS system 116 validates the PIN and 

10 passes the transaction amount to an associated DDA system 1 18 for authorization. 
If the transaction is an off-us transaction, then the authorization request is routed to a 
network 120 to be further routed to the buyer's issuing financial institution 122. The 
authorization approval or denial is passed back to the ATM/POS system 116, routed 
to the Internet Payments Server 112, through the IAS 106, and finally back to the 

15 merchant server (102, 104). 

One embodiment of a process according to the invention is described with reference 
to Fig. 2, a process diagram according to the invention, as follows: 

20 • A buyer fills his shopping cart and proceeds to the merchant's checkout page. 
(202) 

• The buyer selects PIN Purchase as his payment method and enters or selects his 
debit card number. (204) 

25 
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• The merchant re-directs the buyer's browser to an Internet Authorization Server 
(IAS) and passes a unique transaction id. (206) 

• The IAS displays a secure PIN pad screen and uses a unique session key under 
5 Secure Sockets Layer (SSL) technology. The buyer enters his PIN using his mouse 

or other input device. The PIN is encrypted using the unique session key and 
passed to the IAS. The IAS passes the encrypted PIN to an HSM, which then 
generates an encrypted ANSI PIN Block. (208) 

10 • Upon receiving the ANSI PIN block, the IAS returns control of the buyer's 
browser to the merchant along with the unique transaction id. (210) 

• The merchant creates a payment request based on the contents of the shopping 
cart and the payment method. The merchant then proceeds to send the payment 

1 5 request to the Internet Payments Server over a secure link. (21 2) 

• The Internet Payments Server determines the payment type and formats a 
payment authorization request. (214) 

20 • The payment authorization request is routed to an ATM/POS System. The 
ATM/POS System takes the encrypted ANSI PIN block and routes it through a 
second HSM to be decrypted and translated, i.e. is put into a secure format that the 
target acquiring financial institution uses for processing their proprietary encrypted 
PIN data. (216) 

25 
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• If this transaction is an on-us transaction, then the ATM/POS System validates 
the PIN and pass the transaction amount to a DDA System for authorization. (218) 

• If this transaction is an off-us transaction, then the authorization request is routed 
5 to the network to be routed to the buyer's issuing financial institution. (220) 

• The authorization approval or denial is passed back to the ATM/POS System, 
routed to the Internet Payments Server and finally back to the merchant server. (222) 

10 An Exemplary PIN Pad 

Following is an example algorithm performed by some of the main modules of the 
invention to ensure the encryption of the user's PIN. Refer to Fig. 3, a process 
diagram of PIN pad processing according to the invention. 

15 

• The IAS receives control of the user browser from the merchant. The redirection 
process passes the following informational data: merchant id, transaction id, return 
URL, and a merchant defined as its own entity and which does not contain the user's 
PIN. (302) 

20 

• The IAS initiates a call to the HSM to request a public key, PubK. (304) 

• The HSM returns PubK + Slot. (306) 

25 • The IAS passes JavaScript, which handles the navigation/redirection/pertinent 
information between browsers, and PubK back to the user's browser. (308) 
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• The user enters his PIN, for example a enters 4-12 digit number and clicks on a 
submit button. Digits are hidden, for example shown as "*" on the popup frame. 
(310) 

5 

• A Data Encryption Standard (DES) key KD is generated at the user's browser. 
(312) 

• Encrypt PIN digits entered on the browser using KD(PIN). For example, encrypt 
10 using single length DES encryption or stronger if preferred and supported. (314) 

• Encrypt KD using PubK and an algorithm that is dynamically accessed at the time 
of encryption. (316). 

15 • A process that is integrated with the IAS posts KD(PIN) + PubK(KD) to the IAS. 
(318). 

• The IAS passes KD(PIN) + PubK(KD) + Slot to the HSM. (320) 

20 • The HSM converts KD(PIN) + PubK(KD) + Slot to MFK(KPE) + KPE(PIN). Such 
conversion takes the multiple information components and creates a standardized 
format for subsequent processes. For example, the conversion is used to create a 
standard ANSI PIN block. The HSM passes MFK(KPE) + KPE(PIN) back to the IAS. 
(322) 

25 
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• IAS stores MFK(KPE) + KPE(PIN) + Transaction Id + timestamp in the database 
specifically designed to house Internet debit transactions. (324) 

Accordingly, although the invention has been described in detail with reference to 
5 particular preferred embodiments, persons possessing ordinary skill in the art to 
which this invention pertains will appreciate that various modifications and 
enhancements may be made without departing from the spirit and scope of the 
claims that follow. 

10 
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